firewalld configuration
Ed Greshko
Ed.Greshko at greshko.com
Tue Apr 17 15:55:22 UTC 2012
On 04/17/2012 11:32 PM, Adam Williamson wrote:
> On Tue, 2012-04-17 at 12:51 +0100, Richard Hughes wrote:
>> On 17 April 2012 12:20, Adam Williamson <awilliam at redhat.com> wrote:
>>> Frankly, when I found VNC being blocked was inhibiting my beta
>>> validation testing, I couldn't make head nor tail of the firewalld
>>> command line stuff so I just turned it off and went back to the static
>>> firewall. Progress!
>> Same here. I'm now just running without a firewall as I couldn't
>> figure out the magic incantation to Make It Work(tm).
>>
>> I'm amazed how it's installed on Fedora 17 by default and so broken /
>> unfinished. Surely there was a feature page for this?
> There was, and a long-running FESCo debate about whether to accept the
> feature. For the latter, see the FESCo meeting logs from around Alpha to
> Beta time (it got accepted as a feature quite late). For the former, see
> https://fedoraproject.org/wiki/Features/firewalld-default . The
> description of the feature states "system-config-firewall in it's
> current form will also be replaced", but provides no more detail. It
> links to https://fedoraproject.org/wiki/FirewallD , which states "The
> configuration tool firewall-config is the main configuration tool for
> the firewall daemon." and lists, under the Fedora 17 entry in
> 'Development Phases', "Finalize firewall-applet and firewall-config " -
> clearly, that didn't actually happen.
>
> twoerner's statement that firewall-config isn't done yet is to be found
> at
> https://lists.fedoraproject.org/pipermail/devel/2012-March/164865.html .
> I don't think we've had an update since then.
>
> firewall-applet appears to exist, but I'm somewhat confused as to
> exactly what it's supposed to achieve. I'm not sure if it's working
> entirely as intended in GNOME Shell.
I am going to retest in the morning, nearly midnight now, but I think this is what
happened earlier today.
First, I didn't know firewalld was the default firewall (who reads release notes? :-)
). So, when I wanted to make a change I noticed that system-config-firewall wasn't
installed. So, I installed and then was met with the error message "firewalld is
running use firewall-config". So I tried finding that but failed...for obvious
reasons. But I did find firewall-applet but couldn't get it to do much of anything
under KDE other than sit on my panel and offer some options that didn't do anything.
I wanted to try it in GNOME. But when I logged out it would go back to the login
screen. I had the login background and a spinning disk... A reboot didn't fix it
and in my frustration I just reinstalled.
Also going to try the new F17 Beta DVD. Hope there is an install option to opt out
of firewalld. If nothing is done prior to formal release I think it will be fun on
the mailing list. Better than GNOME 3, and better than systemd. :-)
--
Never be afraid to laugh at yourself, after all, you could be missing out on the joke
of the century. -- Dame Edna Everage
More information about the test
mailing list